If this is your first visit, be sure to
check out the Forum Rules by clicking the
link above. You may have to register
before you can post: click the register link above to proceed. To start viewing messages,
select the forum that you want to visit from the selection below.

Sweet thread about ipw2200 packet injection and monitor mode

So here I am again asking cliched quetions about topic that appeared so many times in forums.

Seriously: Is there any way to use Intel/Pro Wireless 2200 BG on BackTrack 5??

As far as I know BackTrack 2 was last system that supported this card (why?).
And yes, I read many artices that deal with this problem but found nothing worked for me.

Only thing that worked was downloading firmware (why is it absent on BT5?), so I managed to turn card on and connect tos. APBut I can't inject packets or even turn it to monitor mode (not counting 'iwconfig' that does nothing at all 'cause as soon as I execute 'airodump-ng' card change back to "managed" mode and stop listening).

1) airmon-ng constanly shows: 'ERROR while getting interface flags: No such device' but in dmesg everything's ok (no errors or other stuff)
2) rmmod and modprobe aren't help
3) rtap_iface in iwconfig shows: 'no wireless extensions', and I can't change its parameters. When trying 'ifconfig rtap0 up' system lock up. Doing this 'echo 1 > sys/bus/.../rtap_iface' also doesn't help
4) this combination of 'rtap0 eth1' and vice versa does nothing
5) airdriver-ng detects card but 'reload' parameter returns something about drivers not found in some non-existent directory
6) and that injection patch in 'pentest/aircrack/' I can't get it to work: Some HUNK:failed errors
7) downloading linux-headers and linux-source isn't helping

And one question off topic: I tried rt73 card on bt5.iso installed on laptop and downloadable vmware version and executing 'locate rt73' on both threw slightly different results. On vmware *.ko files were in /lib/... directory AND also in 'linux-source' directory, but on laptop were only in /lib/... though I used 'apt-get install' to I-hope-install linux-source on laptop. Why is that??

I have Dell D610.
Could some linux-pro (or someone who REALLY knows what's going on) explain why I can't get this card to work and tell me what should I do to set everything properly?

I'll be very grateful. Thanks to everyone who seriously want to help me.

FIRMWARE 3.1 IS PRESENT. CARD WORKS WITH CONNECING TO AP's. AIRMON AND AND MONITOR MODE AREN'T WORKING. MANUAL SETTING TO MONITOR LASTS AS FAR AS EXECUTING ANYTHING FROM AIRCRACK SET.

Re: Sweet thread about ipw2200 packet injection and monitor mode

But you are definitly not using a virtual machine to run bt5 right? Just cause when I read your post I aww it mentioned. If you have a hdd install or a flash install it should work with at.least the arp replay attack. But it will never ever work with.any virtual machine

Re: Sweet thread about ipw2200 packet injection and monitor mode

No I have Dell D610 with only BT5 installed on HDD. But airmon can't get in to work "No such device". I managed somehow to collect the packets with mannually changing to monitor mode with iwconfig but executing any program from aircrack set instantly changes it to "managed" mode, so I keep switching it to monitor and that how it's work. But test ( -9) and Chopchop doesn't work. I tried to catch packets with wireshark to see if they're malformed 'cause on other device it worked and I knew what's going on but with my ipw2200 there's no malformed packets but injecting doesn't work. Why airmon throws this "no such device", dmesg shows no errors, and I can use this card to connect to AP so it definitely works.
And what's funny about it, I have another card on rt73 chipset and when I plug it in dmesg alwasy says "Device not ready" or something like that but I can connect to AP, and after manually changing to any channel all packet injection methods work. Somehow aireplay pick at random channel and says that this particular AP is not on this channel unless I mannualy pick some channel once, and after that aireplay has no problems with targeting AP whatever channel they're on. But this card is so weak there's no point using it anyway. That's a little digression.

Concluding:

Besides some strange behavior of rt73 that showed up on BT5, this card woks fine, airmon puts it to monitor mode without errors and all injection methods work, but card is weak as sh*t and completely useless.
ipw2200 has quite a range, dmesg shows everything is good, but airmon throws "no such device", monitor mode is very volatile when comes to using anything that starts with 'air' and ends with '-ng', and wireshark shows no malformed packets (come to think it's shows no packets coming out of this card).

Re: Sweet thread about ipw2200 packet injection and monitor mode

Have you considered updating your NIC? From a budget of about $50, I was able to get an external ALFA AWUS036H USB dongle and also an Intel ABGN 4965 integrated Wifif card that both support packaet injection. Rather than spinning my wheels as to why the OEM NIC did not inject, I just got the funds to make the upgrade and be done with the issue. If you have trouble integrating any NICs into your older system, the people on the "My Digital Life" forums do a great job modifying BIOS drivers to remove whitelist NICs. HP is a big proponent of the "whitelist" which basically a list that only includes NICs of manufacturers that send royalties to HP. My BIOS no longer honors this.

Re: Sweet thread about ipw2200 packet injection and monitor mode

Originally Posted by freemyggle

Have you considered updating your NIC? From a budget of about $50, I was able to get an external ALFA AWUS036H USB dongle and also an Intel ABGN 4965 integrated Wifif card that both support packaet injection. Rather than spinning my wheels as to why the OEM NIC did not inject, I just got the funds to make the upgrade and be done with the issue. If you have trouble integrating any NICs into your older system, the people on the "My Digital Life" forums do a great job modifying BIOS drivers to remove whitelist NICs. HP is a big proponent of the "whitelist" which basically a list that only includes NICs of manufacturers that send royalties to HP. My BIOS no longer honors this.

OK. If it was that easy I'd have it already. In USA it's just $50 but in my country on the other hand the same card costs equivalent of $250 for you, and I'm not talking about buying in abroad and shipping it in. It's just the "normal" prices where I live. Everyting is 3-4 times more expensive than anywhere in this planet. So either way it'd cost me far more than it should. Of course if I have a chance of buying it for reasonable price I'll do it, but for now I'm stuck with what I have.

Last edited by bolexxx; 06-17-2011 at 02:11 PM.
Reason: it will take as long as it takes

Re: Sweet thread about ipw2200 packet injection and monitor mode

Greytega

I somehow managed to maintain aircrack tools working without using airmon. Normally card is in 'managed' mode and that causes aircrack tools to freeze after few seconds. Turns out it's 'Wicd' guilty of that. Instead of fighting with airmon it's better to shutdown 'Wicd' in task manager and then switch to monitor mode with 'iwconfig' and then use aircrack tools. With 'Wicd' not working there's no freezes in airodump, even when you simultaneously execute another aircrack tools. But only I managed to get to work ARP replay attack (-3).

And there's a question: Is there a way to execute 'fakeauth attack' (-2) with ipw2200 ?? Maybe I'm wrong but is association to AP require packet injecting??

PS: One time I put my laptop to sleep with 'System settings' panel open and since then every time I turn laptop on this System settings panel shows up. I guess it's stuck somewhere in autorun script or something. How can I turn it off, and why did it happen?